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(54) Method and apparatus for long tern, verification of digital signatures 



(57) The time over which a digital signature can be 
verified is extended well beyond the expiration of any or 
all of the certificates upon which that signature depends 
In a "save state" approach, an archive facility is used to 
store public key infrastructure (PKI) state, e.g. crypto- 
graphic information, such as certificates and certificate 
revocation lists (CRLs), in addition to non^cryptographic 
information, such as trust policy statements or the doc- 
ument itself. This information comprises all that is nec- 
essary to re-create the signature verification process at 
a later time. When a user wants to verify the signature 
on a document, possibly years later, a long term signa- 
ture verification (LTSV) server re-creates the precise 



state of the PKJ at the time the document was originally 
submitted. The LTSV server restores the state, and the 
signature verification process executes the exact proc- 
ess it performed (or would have performed) yearn ear- 
Her. Another embodiment of the invention combines the 
strength of cryptography with the proven resilience of 
(non-public key) technology and procedures currently 
associated with secure data stores by saving the PKI 
state for future verification; and protecting the PKI state 
information from intrusion by maintaining it in a secure 
storage facility which is protected by services, such as 
firewalls, access control mechanisms, audit facilities in- 
trusion detection facilities, physical isolation, and net- 
work isolation. 
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Description 

This invention relates to a method and apparatus 
for the long term verification of digital signatures. 

The technology of digital signatures opens up the 
likelihood of increased use of digital networks (including 
the Internet) for electronic commerce. It is now feasible 
to send and receive digitally signed documents that rep- 
resent transactions of some value to one or more par- 
ties. 

Currently, a digital signature is verifiable only as 
long as the digital certificates upon which it depends 
have not expired. Given the expectation that a certifi- 
cate's life span is in the area of one to two years dura- 
tion, current technology does not support the emerging 
needs of the electronic commerce market, where the du- 
rability of digital signatures over time is a requirement. 

For certain applications, the recipient of digitally 
signed documents should be able to verify the authen- 
ticity of a document years after the document was 
signed, just as the document's authenticity can be ver- 
ified at the time of signing. Unfortunately, the current 
state of the technology does not provide for the verifica- 
tion of these digital signatures after certificate expiration 
because it is the nature of keys and certificates used for 
signing and encrypting documents to expire after a spe- 
cific period of time (typically after a year or two). This is 
due, at least in part, to the fact that the strength of keys 
is expected to degrade over lime because of such fac- 
tors as improvements in computing speed and break- 
throughs in cryptoanalysis. Moreover, the longer the key 
is in use, the longer that an adversary has to attempt to 
crack the key. Therefore, it is standard practice to re- 
place keys periodically. This is why certificates have 
specific expiration dates. 

An examination of the current state of the technol- 
ogy reveals that a digital signature verification module 
would fail if presented with a request to verify a signed 
document in which any of the associated certificates had 
expired. Fig. 1 is a block schematic diagram illustrating 
certification expiration. This simple example demon- 
strates that, given a certificate 10 having a two-year life 
span (e.g. from 4/1/96 to 4/1/98), a signature could be 
successfully verified six months (e.g. on 10/1/96) after 
certificate issuance (1 00); but this same signature would 
not be successfully verified three years later (e.g. on 
4/1/99) (102). This behavior is clearly unacceptable if 
the duration ol a document, for example contract, must 
extend beyond the duration of the certificates 1 life. 

Further, some current systems use certificate revo- 
cation lists (CRLs) to revoke certificates and remove 
them therefrom, once those certificates expire. This 
means that a record of those CRLs generally disap- 
pears, making long term signature verification impossi- 
ble using known techniques. 

It is known to reconstruct past trust (see A. Menez- 
es, P van Oorschot. S. Vanstone, Handbook of Applied 
Cryptography. CRC Press, pp. 583 (1996)). In this ap- 
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proach, both signature reverification relative to a past 
point in time and resolution of disputes may require re- 
construction of chains of trust from a past point in time. 
This requires archival of keying material and related in- 

s formation for reconstruction of past chains of trust. Di- 
rect reconstruction of such past chains is taught to be 
unnecessary if a notarizing agent is used. A notarizing 
agent is defined as a general service capable not only 
of ascertaining the existence of a document at a certain 

io time, but of vouching for the truth of more general state- 
ments at certain points in time. The original verification 
of the notary is taught to establish the existence of a 
trust chain at that point in time, and subsequently its 
record thereof is taught to serve as proof of prior validity. 

is it is taught that details of the original trust chain may be 
recorded for audit purposes. It is not taught that a doc- 
ument can be verified based upon the existence of ex- 
pired certificates. Rather, reliance is placed upon the 
use of the notarizing agent. It is further taught that the 

20 archived keying material can be used as evidence al a 
future time to allow resolution of disputed signatures by 
non-automated procedures. 

It would be advantageous to provide a technique for 
extending the time over which the authenticity and in- 

2S tegrity of digital signaturescan be accurately verified be- 
yond the time that any relevant certificates expire. 

The present invention seeks to provide improved 
signature verification. 

According to an aspect of the present invention 

30 there is provided a method of enabling long term verifi- 
cation of digital signatures as specified in claim 1. 

According to another aspect of the present inven- 
tion there is provided apparatus as specified in claim 11 . 
The prefered embodiment provides a method and 

35 apparatus which effectively extends the time over which 
a digital signature can be verified, i.e. well beyond the 
expiration of any or all of the certificates upon which that 
signature depends. The invention can be used for any 
application domain where users want digital signatures 

to to be applied to long lasting documents (e.g. contracts), 
and be independently verifiable years or decades after 
signing the document. The preferred embodiment pro- 
vides two alternative approaches to constructing a so- 
lution which delivers long term signature verification 

*s (LTSV). 

One embodiment of the invention provides an ap- 
proach for solving the LTSV problem that is referred to 
herein as the "save state" approach. This embodiment 
of the invention largely entails the use of cryptographic 

so information and techniques. Thus, an archive facility is 
used to store the public key infrastructure (PKt) state, 
e.g. cryptographic information, such as certificates and 
CRLS, in addition to the document itself. This informa- 
tion comprises all that is necessary to re-create the sig- 

ss nature verification process at a later time. It may also be 
desirable to store the source document separately from 
the cryptographic information (such as the signature, 
certificates, and CRLs) for reasons of privacy. For ex- 
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ample, a user may want to have control over the source 
document. The PKI state information may contain either 
or both of cryptographically protected information, such 
as certificates and CRLs, and information that is not 
cryptographically protected, such as the public key of a 
root certification authority or policy information. 

When a user wants to reverify the signature on a 
document, possibly years later, an LTSV server re-cre- 
ates the precise state of the PKI at the time the docu- 
ment was originally submitted. The LTSV server re- 
stores the stale, and the signature verification process 
executes the exact process it performed (or would have 
performed) years earlier. The lime used as the basis for 
re-creation of the signature verification process does not 
have to be the time ol submittal. Rather, the time could 
be some other relevant time, such as when a document 
was signed by the originator or when it was verified by 
a recipient. 

Another embodiment of the invention combines the 
strength of cryptography with the proven resilience of 
(non-public key) technology and procedures currently 
associated with secure data stores. An example of this 
embodiment provides a mechanism that: 

Saves the PKI state for future reverificalion; and 

• Protects the PKkstate information from intrusion by 
either maintaining it in a secure storage facility 
which is protected by services, such as firewalls, ac- 
cess control mechanisms, audit facilities, intrusion 
detection facilities, physical isolation, and network 
isolation; and/or employing a cryptographic protec- 
tion mechanism, for example using the LTSV server 
to sign the PKI state information or using a keyed 
hash algorithm. 

In addition, other non-cryptographic features may 
be added to such approaches to deliver a highly secure 
and trusted LTSV solution, including, for example utili- 
ties for viewing the PKI state information (cryptographic 
as well as non-cryptographic) and visually monitoring 
the security of the system. These utilities can be used 
to provide visual evidence for purposes of dispute res- 
olution. 

One enhancement to the secure storage approach 
herein disclosed maintains certain evidence, such as 
certificate chains, in an archive. This information need 
not be used for actual reverificalion, but merely as sup- 
porting evidence in case of a dispute. 

An embodiment of the present invention is de- 
scribed below, by way of example only, with reference 
to the accompanying drawings, in which: 

Fig. 1 is a block schematic diagram illustrating cer- 
tification expiration; 

Fig. 2 is a block schematic diagram illustrating a 
"save state" embodiment of the invention; 
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Fig. 3 is a block schematic diagram illustrating a 
"save stale" "secure storage' embodiment of the in- 
vention: 

5 Fig. 4 is a flow diagram that provides two alternative 
scenarios that illustrate the applicability of time 
stamps to the preferred embodiments; 

Figs. 5a-5c provide block schematic diagrams that 
illustrate three long term signature verification us- 
age scenarios; . 

Fig. 6 is a block schematic diagram that illustrates 
trust between two entities ; and 

Fig. 7 is a block schematic diagram that illustrates 
a long term signature verification trust model. 

The meanings of some of the terms used herein 
may differ somewhat from common usage. The follow- 
ing definitions are meant to clarify the meaning of each 
in the context of its usage herein. 

Archive: Any facility for the storage and retrieval of 
electronic information. 

Certificate: An artifact upon which digital signatures 
are based. A certificate securely binds an entity with that 
entity's public key. 

Cryptographic Refresh: A means of solving the key 
degradation problem when storing cryptographic infor- 
mation for long periods of time. The process involves 
re-encoding the old cryptographic artifacts (e.gl en- 
crypted data, digital signatures, and message digests) 
with stronger algorithms and/or longer keys. 

Document: A document can be any information 
which can be represented electronically or optically (e. 
g. an arbitrary bit stream). 

Key Degradation/Algorithm Degradation: The proc- 
ess whereby the protection afforded a document by en- 
cryption under a key loses effectiveness over time. For 
example, due to factors such as improvements in com- 
puting speed and breakthroughs in cryptoanalysis, it is 
expected that a document securely encrypted today 
would be crackable years later. This property could af- 
fect any cryptographic information, including digital sig- 
natures. This problem can be generalized to keyed and 
non-keyed cryptographic processes and artifacts, such 
as one-way hash algorithms. The security provided by 
these are also expected to diminish over time. 

LTSV: Long Term Signature Verification. The herein 
described method and apparatus for verifying a digital 
signature after the certificates used for such verification 
have expired. 

LTSV client: The entity which request6/utilizes the 
services of the LTSV server. 

LTSV server: The entity which delivers the LTSV 
services. This does not imply, however, that this entity 
must be stand-alone component. 

LTSV submission: A request from an LTSV client to 
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an LTSV server to perform the necessary functions re- 
quired to enable reverrfication of a digital signature 
some time in the future (e.g. save PKI state). 

PKI: Public Key Infrastructure. Refers to all compo- 
nents, protocols, algorithms, and interfaces required to s 
deliver the capabilities to digitally sign and verify docu- 
ments. For purposes of clarity herein, a PKI does not 
include a service module for long term signature verifi- 
cation (LTSV server), although in practice a PKI might 
be designed to encompass such a module. io 

Signature Reverifi cation: The re-creation of the dig- 
ital signature verification process after the original veri- 
fication. This specifically refers to the process associat- 
ed with the verification process, based upon the resto- 
ration of the previously saved PKI state. is 

Signature Verification: The process by which a dig- 
ital signature, for a given document, is determined to be 
authentic or not. 

Signature Verification Module: The module which is 
responsible for performing the verification of digital sig- so 
natures. 

Time stamp: A digital time stamp is an electronic 
indicator which associates the current date and time 
with a particular document. Time stamps are useful for 
proving that a document existed at a particular time. It 25 
is desirable that time stamps be 6ecure, durable over 
time, and trusted by those using them. 

The discussion herein assumes an understanding 
of public key. digital signatures, and PKI infrastructure 
using X.509 certificates. Practical information concern- 30 
ing application of such techniques is considered to be 
well known to those skilled in the art. Background infor- 
mation may be found, for example, in B. Schnier, Ap- 
plied Cryptography: Protocols. Algorithms, and Source 
Code inC . John Wiley & Sons, Inc. (1 996); W. Ford, M. 35 
Baum, Secure Electronic Commerce . Prentice Hall PTR 
(1997); and in the X.509 v.3 specification ([X.509-AM] 
ISO/IEC JTC1/SC21, Draft Amendments DAM4tolSO/ 
IEC 9594-2, DAM 2 to ISO/IEC 9594-6, DAM 1 to ISO/ 
IEC 9594-7, and DAM 1 to ISO/IEC 9594-8 on Certifi- *o 
cate Extensions, 1 December 1996). The system de- 
scribed herein may be built upon the X.509 infrastruc- 
ture. 

The following discussion provides some back- 
ground on cryptographic techniques. Cryptographic al- 
gorlthms can generally be divided Into two categories: 
public key (e.g. RSA) and secret key (e.g. DES). Both 
types of algorithms transform plain text into cypher text 
using a key(s) for the encryption and decryption proc- 
esses, so 

Both public key and secret key algorithms are con- 
sidered to be secure. One is not better than another in 
terms of security. The strength of each algorithm, in 
terms of it being cracked, is largely a function of the 
length ol the key used. The primary distinguishing char- ss 
acteristic ol public key, however, is that it uses two keys 
(one to encrypt and another to decrypt), while secret key 
algorithms use only one key (the same key is used for 



encryption and decryption). For this reason, secret key 
algorithms are sometime referred to as symmetric algo- 
rithms and public key algorithms are called asymmetric. 

One problem with secret key algorithms is that a key 
must be distributed between ail participants. This means 
that some secure channel must be available for the dis- 
tribution of the keys. 

In practice, each entity in a public key-based system 
has a key pair, /.©. one private key and one public key. 
The private key is known only to its owner, the public 
key is known to all correspondents. It is computationally 
inf easible to determine a private key from the public key 

The two primary services provided by public key 
cryptography are secure exchange of symmetric keys 
(by using public key techniques to encrypt a symmetric 
session key), and non-repudiation via digital signatures. 

Public key cryptography can be used to solve the 
key exchange problem associated with secret key algo- 
rithms by using this technology to encrypt the secret key 
under the public key of the recipient. It can then be de- 
crypted by the recipient using his/her private key. 

Digital signatures are possible by encrypting data 
with the private key of the signing entity. Any entity can 
decrypt it with the signer's publicly available public key 
and know that no one else could have encrypted it be- 
cause that private key is only known by that one individ- 
ual. This particular use of public key provides the non- 
repudiation service, which is a primary use of public key 
cryptography. A digital signature is very powerful notion, 
it generally exhibits the following characteristics: 

• Cannot be forged; 

• Is independently verifiable; 

• Is not reusable or transferable to a different piece 
of data; and 

• Includes data integrity checks, allowing tamper-de- 
tection. 

The new services provided by public key cryptog- 
raphy do not come for free, however, because these 
services require the existence of a supporting public key 
infrastructure. The strength of a public key system de- 
pends upon the assurance that all participants know the 
public key of any entity with whom they wish to corre- 
spond. If a secure correspondence between a user and 
his/her public key cannot be maintained, then it may be 
possible to impersonate another entity or read encrypt- 
ed data intended for another. 

The standard solution to this problem is the issu- 
ance of a digital certificate (X.509 certificate) to each 
participant. This certificate securely binds its owner's 
name with his/her public key. It is issued by a trusted 
third party, called a certification authority (CA), and is 
signed by that CA t thereby making it tamper proof. Cer~ 
tificates are issued for a limited pBrhd of time (start and 
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stop dates), during which the certificate is considered 
valid. A certificate is considered expired after the ending 
validity date. 

The public keys of entities (which are embedded in 
the X.509 certificates) must be publicly available. The s 
distribution or access mechanisms available are numer- 
ous. 

The secure operation of a public key infrastructure 
rests upon certain points of trust. Certainly each entity 
must trust its own CA. However, when a given PKI do- io 
main is expanded to encompass relationships with mul- 
tiple CAs, the number of points of trust are also expand- 
ed. The trust placed in a particular end entity (Le. that 
entity's certificate or signature) is directly related to the 
trust relationships among the CAs which certify those is 
entities. 

CAs can create trust relationships with other CAs 
by certifying each other. This can be a unidirectional 
trust relationship, whereby one CA can merely issues a 
certificate to another CA, jusl as a CA issues a certificate 20 
to an end user. Two CAs can also mutually agree to trust 
each other (bidirectional trust relationship) by issuing a 
cross-certificate - a special form of certificate which 
contain two individual certificates, one for each direc- 
tion. 2S 

If two entities are in the same CA domain, then there 
is no concern with respect to C A trust because they both 
trust the same CA. This is not the case, however, when 
dealing with the scenario where entities which have 
been certified by different CAs attempt to conduct a se- 30 
cure transaction. The security of this transaction de- 
pends upon the trust between the CAs. More generally 
the security provided by the PKI depends upon the trust 
models embodied in the trust relationships among the 
various CAs which choose to trust one another. In con- zs 
crete terms, any change in these trust relationships can 
cause a signature verification to either succeed or tail. 

The preferred method and apparatus effectively ex- 
tend the time over which a digital signature can be ver- 
ified, i.e. well beyond the expiration of any or all of the 40 
certificates upon which that signature depends. They 
can be used lor any application domain where users 
want digital signatures lobe used on long lasting docu- 
ments (e.g. contracts), and be independently verifiable 
years or decades after signing the document The pre- *s 
ferred embodiment of the invention provides two alter- 
native approaches to constructing a solution which de- 
livers long term signature verification (LTSV). 

Fig. 2 is a block schematic diagram illustrating a 
'save state' embodiment of the invention. This embod- so 
iment, largely entails the use of cryptographic informa- 
tion and techniques. Thus, an archive facility 20 is used 
to store a public key infrastructure (PKI) state 24, e.g. 
cryptographic information, 6uch as certificates and 
CRLS, in addition to the source document itself. For ex- ss 
ample, the LTSV client 25 requests the services of an 
LTSV server 26 to accomplish storage of such informa- 
tion. This step is shown as the "save state" step in Fig. 



2. The PKI state information may contain either or both 
of cryptographically protected information, such as cer- 
tificates and CRLs, and information that is not crypto- 
graphically protected, such as the public key of a root 
certification authority or policy information. 

This information comprises all that is necessary to 
re-create the signature verification process at a later 
time, i.e. during the "restore state" step, for example, as 
requested by the LTSV client. It may also be desirable 
to store the source document separately from the cryp- 
tographic information (such as the signature, certifi- 
cates, and CRLs) for reasons of privacy. For example, 
a user may want to have control over the source docu- 
ment. 

When a user wants to reverify the signature on a 
document, possibly years later, the LTSV server 26 re- 
creates the precise state of the PKI at the time the doc- 
ument was originally submitted. The LTSV server re- 
stores the state, and the signature verification process 
28 executes Ihe exact process il performed (or would 
have performed) years earlier. The time used as the ba- 
sis for re-creation of the signature verification process 
does not have to be the time of submittal. Rather, the 
time could be some other relevant time, such as when 
a document was signed by the originator or when it was 
verified by a recipient. 

Fig. 3 is a block schematic diagram illustrating a 
"save state" "secure storage' embodiment of the inven- 
tion. This embodiment of the invention combines the 
strength of cryptography with the proven resilience of 
(non-public key) technology and procedures currently 
associated with secure data stores. An example of this 
embodiment: 

• Saves the PKI state for future reverification (as de- 
scribed above in connection with Fig. 2); and 

• Protects the PKI state information from intrusion by 
maintaining it in a secure storage facility which is 
protected by services, such as firewalls, access 
control mechanisms, audit facilities, intrusion de- 
tection facilities, physical isolation, and network iso- 
lation; and/or employing a cryptographic protection 
mechanism, for example using the LTSV server to 
sign the PKI state information or using a keyed hash 
algorithm. 

In addition, other non-cryptographic features may 
be added to such approach to deliver a highly secure 
and trusted LTSV solution, including, for example utili- 
ties 30 for viewing the PKI state information (crypto- 
graphic as well as non-cryptographic) and visually mon- 
itoring the security of the system. Theee utilities can be 
used to provide visual evidence for purposes of dispute 
resolution. 

One enhancement to the secure storage approach 
herein disclosed maintains certain evidence, such as 
certificate chains, in an archive This information need 
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not be used for actual reverificatfon, but merely as sup- 
porting evidence in case of a dispute. See A. Menezes, 
P. van Oorschot, S. Vanstone, Handbook of Applied 
Cryptography . CRC Press, pp. 583 (1 996), for one man- 
ner in which this enhancement may be implemented in 
the context of a notary service (discussed above). 

There are other embodiments of the invention in 
which a hybrid LTSV solution could be constructed by 
combining cryptographic and non-cryptographic tech- 
niques. The best combination lor a particular application 
domain depends upon the security requirements of the 
application(s), in combination with cosl constraints. 

it is presently preferred to employ the second em- 
bodiment of the invention (discussed above) due to the 
cryptographic strength associated with its ability to re- 
create the complete digital signature verification proc- 
ess, combined with the trust instilled by more conven- 
tional techniques used tor providing secure storage, and 
in conjunction with audit and viewing facilities with which 
to view evidence and monitor the secure storage con- 
trols. In practice, the most useful embodiment of the in- 
vention for a particular application may be that which is 
the least expensive and which still meets the user or ap- 
plication requirements. 

Several issues related to the design of a system 
which implements LTSV are described betow. Alterna- 
tives for the resolution of the issues are presented, as 
well as a discussion of the advantages and disadvan- 
tages associated with each after native. The best ap- 
proach to any given solution depends upon the security 
requirements of the application(s) using the LTSV serv- 
ices, as well as the cost constraints. There is no best 
solution for all applications. 

When to Save the PKI State 

Signature ^verification is preferably associated 
with a particular time because the outcome of this proc- 
ess could change, depending upon the state of Ihe PKI 
(e.g. because of certificate revocations or the creation/ 
removal of cross certificates). There are numerous pos- 
sibilities with regard to when the PKI state should be 
saved, including: 

• At signature creation time. This approach is used 
when an individual wants to document the validity 
of his/her signature at the time it was created. This 
is the most accurate time to store the PKI slate be- 
cause it reflects the state at the time of signing, 
which is presumably the critical time in evaluating 
the authenticity of that signature. Changes to the 
PKI state occur after that time, some of which could 
impact the outcome of a signature reverification. 
Therefore, saving of the PKI state at any time after 
signing introduces the possibility of inconsistencies 
between the signer's and recipient's perspectives 
on a signature's validity. 



■ At signature. verification time. This approach is use- 
ful when a recipient wants to document the validity 
of a signed document received from another Indi- 
vidual. 

s 

• At archival time. When a user decides that a docu- 
ment should be archived for long term storage is 
also an appropriate time to save the PKI state. 

70 • When explicitly requested. There mav occur certain 
application specific document life cycle milestones, 
at which time the user may desire the PKI state to 
be saved for future reverification. 

• Just before chanoes in PKI state (e.g. certificate 
revocation!. This approach requires a tight integra- 
tion with the PKI because changes in the PKI must 
be monitored. 

The correct time at which to save the PKI stale is 
preferably determined by the constraints and needs of 
the application using the LTSV services. A robust LTSV 
solution is able to accommodate the needs of all (or 
most) applications in this respect. 

Contents of the PKI State. 

The exact composition of the PKI state varies some- 
what from one PKI vendor's product to another's, de- 
pending upon the implementation chosen by each ven- 
dor. Moreover, certain information is stored in a different 
format from one vendor to another. In addition, the con- 
tents of a PKI state may change over time as well, as 
new capabilities (and supporting data) are added to the 
system. Finally, the required contents of the PKI state 
may change from one application to another, depending 
upon the needs (e.g. level of security and legal require- 
ments) of each application. 

Notwithstanding these uncertainties, there are 
classes of PKI state information which are candidates 
for saving. These classes include: 

Certificate chain (list of certificates from one entity 
to another, including certification authorities (CAs) 
and the end entities). 

CRLs (one for each CA in certificate chain). 

CA policy statements or identifiers. 
Attribute certificates. 

• Date and time. 

• Trust information (e.g., pubic key(s) or certificate's) 
of trusted root CA(s), policy constraints). 

Policy constraints are, for example, non-crypto- 
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graphic information stored within the LTSV archive. The 
public key of the trusted root CA may or may not be cryp- 
tographically protected. If it is embedded in a certificate, 
then it is signed by the C A. However, it could just as well 
be an isolated public key, in which case it is unprotected 
by cryptography. 

II is possible that the items in the above list may not 
be supported or available from certain PKI implementa- 
tions. Further, the PKI state from another implementa- 
tion might include some additional data. Therefore, the 
list above is only an example of what might be consid- 
ered important pieces of PKI state information, given the 
current state of the technology. An implementation of an 
LTSV service is preferably tied to the implementation of 
a specific PKI until such time as the technology evolves 
and comprehensive standards emerge. 

How to Store the PKI State. 

Storage of the PKI state is prelerably accomplished 
in either of two general ways: 

• Store all of the PKI state relevant to each document 
separately; and 

• Store the PKI state centrally, and only store refer- 
ences Xo the PKI state information with each docu- 
ment. This approach enables storage efficiencies 
by eliminating the redundant storage of PKI state 
information over multiple documents. For example, 
given two documents submitted to the LTSV server 
at about the same time, it is possible thai the CRLs 
contained in the PKI state are exactly the same for 
both submissions. Central storage of this informa- 
tion allows the LTSV server to store this information 
only once. 

The storage requirements for the save state solu- 
tion for LTSV may be quite large, depending upon the 
size of the certificates, the length of the certificate chains 
and - more importantly the size of the CRLs. The 
choice of storage technique may have a great impact 
on the total data storage requirements. It is clearly un- 
desirable to store massive CRLs with every document 
that is stored for long term archival and possible future 
reverification. For this reason, the second alternative 
listed above is presently considered to be the preferred 
approach. 

However, this second approach may present cer- 
tain difficulties in applications where the LTSV server is 
an entirely separate component from the PKI, and 
where support of multiple PKIs is a primary design goal 
of the LTSV server. In this case, it would be advanta- 
geous for the PKI state to remain opaque to the LTSV 
server, thereby providing ease of support of multiple PKI 
vendors. Given that what constitutes the PKI state for 
one vendor may be different for another vendor, it is de- 
sirable to maintain an opaque interface between the 



LTSV server and the PKI. On the other hand, storage 
efficiencies can be derived only if the LTSV server is in- 
formed about the contents and format of the PKI state 
information. These conflicting requirements accepta- 
s bie storage size and opaqueness - pose a challenge 
for the design of an LTSV service. 

Some of the possible alternatives are listed below: 



• Keep Ihe interface opaque and store the PKI state 
10 as it currently exists (full certificate chains and 

CRLs). This option focuses entirely on the opaque- 
ness requirement, and sacrifices the data size re- 
quirement. The primary advantage of this solution 
is simplicity and quick deployment. 

is 

• Remove the opaqueness requirement by making 
the PKI state visible to the LTSV server. This allows 
the LTSV server to manage the certificates and 
CRLs manually - thereby avoiding duplication of 

20 these objects in the data store. This solution poten- 
tially sacrifices the ease of multi-vendor support at 
the expense of achieving efficient storage. 

• Compromise by making the CRLs visible to the 
*5 LTSV server, where other PKI state information is 

opaque. This solution is interesting because it is 
probable that the CRLs are the largest piece of data 
comprising the PKI state. Because CRLs are stand- 
ard across nearly all PKIs, the visibility should not 
30 pose a problem in terms of multi-vendor support. 
This solution address both of the requirements, but 
does put the burden of management of the CRLs 
onto the LTSV server. 

35 • An alternative embodiment of the invention pro- 
vides a variation on the solution above that breaks 
up the PKI state into multiple pieces, each of which 
is opaque. The PKI indicates which of these objects 
is common across multiple signed documents (e.g. 

^o CRLs and certificates). The PKI labels these ob- 
jects with unique handles (identifiers), thereby al- 
lowing the LTSV server to store these objects and 
retrieve them efficiently when needed for signature 
reverification « all the while maintaining the 

« opaqueness of these objects. 

• Encourage PKI vendors to make concise crypto- 
graphicaily protected assertions about the state of 
revocation, as an alternative to using CRLs. (For ex- 

50 ample, CRLs indicate who has been revoked. It 
would be more efficient if the PKI could make a 
statement that a certificate has not been revoked at 
a given point in time. This could eliminate the need 
for storing CRLs.) This approach is non-standard, 

55 but acceptable because these PKI-generated as- 
sertions are not seen by any application outside the 
PKI. A major benefit of this approach is that the 
opaqueness of the state is preserved while some of 
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the storage inefficiencies of the state information 
are removed. 

For cases where the LTSV server is dedicated to a 
particular PKI , it is preferred tocreate a close integration 
between the two components, thereby allowing the 
LTSV server to know about the content and format of 
the PKI state information, and store it in the most effi- 
cient manner possible. For cases where the LTSV serv- 
er must be insulated from the PKI (e.g. for portability 
across multiple PKIs), one of the options listed above 
(with the possible exception of the first two) may be 
used. 

Location of Source Data. 

The source data associated with an LTSV submis- 
sion can be stored either by the client or by the LTSV 
server itself. Some LTSV clients do not choose to submit 
clear text to the LTSV server for storage because of con- 
cerns over privacy. (Privacy of the channel between the 
LTSV client and the LTSV server can be achieved by 
having the client encrypt the submission under the pub- 
lic key of the LTSV server.) A submission to the LTSV 
may be encrypted, such that the LTSV is not able to de- 
crypt it. That is acceptable wilh the LTSV server. How- 
ever, the client must determine how to decrypt the sub- 
mission. 

Given that the LTSV server views the source data 
as a bit stream, it is possible that the message could be 
encrypted by the LTSV client before submission. (The 
fact that a general purpose LTSV server treats the 
source document as a bit stream does not preclude the 
possibility of implementing an application specific LTSV 
server that is aware of the contents of the submitted da- 
ta.) The LTSV server treats the encrypted data as the 
source. Such prior encoding may be sufficient for some 
applications' needs for privacy. In this case, however, 
either the client must maintain the decryption key, or the 
key must be divulged and stored by the LTSV server 
(which is probably not acceptable). 

Alternatively, the LTSV client may submit a mes- 
sage digest (resulting from a one-way hash function) as 
the source document. The client, in this case, is respon- 
sible for maintaining the real source document. If the 
source document is stored by the client, then only the 
PKI state information is stored In the LTSV server^ ar- 
chive (along with some reference to the source docu- 
ment or the submitter). 

Whether the source data is stored by the client or 
the LTSV server, it must be produced if and when a 
reverification of that document is required. It is a re- 
quired component of any signature verification process. 

Key and Algorithm Degradation. 

If cryptographrcally encoded information (e.g. digit- 
al signatures or encrypted data) is stored for a significant 



period of time, the issue of key and algorithm degrada- 
tion must be addressed, he. the probable loss h effec- 
tiveness of a cryptographic key or algorithm over time. 
Although signed documents are expected to be sealed 
5 securely with strong cryptographic algorithms, the 
strength of an algorithm and associated key length de- 
creases over time with the advent of faster computers 
and new developments in cryptoanalysis. It is expected 
that cryptographic algorithms and key lengths have lim- 
io hed life spans. It is generally acknowledged that they 
should be examined, modified, and/or replaced at peri- 
odic intervals. This legitimate security concern increas- 
es with the length of time for which a document is valid, 
and it becomes a very serious threat as the time span 
is approaches multiple decades. 

For example, a digital signature performed today, 
using RSA and a 512-bit key, is considered very strong 
(ie. it would take years to forge It). But, it is also expect- 
ed that this same signature may be easily forgeable 
within ten years or so. This is because of the increased 
ability to search the key space faster (and thereby find 
the key used to sign the message) with newer comput- 
ers or computing techniques. Similarly, there may con- 
tinue to be developments in techniques for factoring 
large prime numbers (the difficulty of which is the basis 
for the strength of the RSA algorithm). It is reasonable 
for both of these abilities to improve over time (although 
the pace of these changes is less certain). 

It is, therefore, prudent to protect cryptographically 
encoded documents from this threat when those docu- 
ments must live beyond a few years. This is the case 
with the documents expected to be submitted to the 
LTSV server, and especially so when using the save 
state approach herein disclosed. Hence, the LTSV facil- 
ity should address this problem. Not only must the 
signed documents stored in the archive be protected 
from this threat, but all other cryptographic data or meta- 
data stored in the archive should be protected. (The 
cryptographic data primarily include keyed information. 
Thai is, any information that is signed or encrypted with 
a private key. Such information may also include non- 
keyed cryptographic data, such as the outpul from a 
hash algorithm, such as MD5.) This data could also in- 
clude such items as certificates and CRLs, which are, 
themselves, digitally signed by the issuing CA. 

There are any number of ways that the LTSV facility 
addresses this problem. For example: 

• Periodically countersign all data in need o1 crypto- 
graphic refresh through the use of nested signa- 
tures. Under this approach, the LTSV server effec- 
tively refreshes the cryptographic strength of the 
data by signing it with successively longer keys (or 
stronger algorithms) every few years. Each counter 
signature has the effect of locking in the crypto- 
graphic strength of the enclosed signature(s), 
thereby extending the cryptographic life of the en- 
closed document. This countersignature is prefera- 
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bly performed by the LTSV server using a key 
owned by that server. Performance shortcuts may 
be required to avoid the cosily unraveling of signa- 
tures at reverification time, or the potentially time 
consuming task of countersigning every document 
in the archive. Such shortcuts include, for example, 
removing a previous countersignature before ap- 
plying a new one, or countersigning the entire ar- 
chive or portions thereof instead of each individual 
document 

• A modification of the cryptographic approach sug- 
gested above provides for countersigning the infor- 
mation in the archive once, but with an extremely 
long key. i.e. a key which is expected to be unbreak- 
able for decades or more. This eliminates all need 
for countersigning. This maybe merely a theoretical 
solution because finding an algorithm and key 
length which is secure for that long is impossible to 
predicl. Therefore, there is still a need to provide 
some backup mechanism, just in case the original 
algorithm were cracked, for example. 

• Protect the cryptographic information in the archive 
by insulating the archive itself, rather than the indi- 
vidual documents contained in the archive, thereby 
eliminating the need for a cryptographic solution. In 
this approach, the archive is protected via access 
controls and other procedural controls. If the ar- 
chive can be effectively insulated from intrusion and 
modification, then key degradation is not an issue 
and cryptographic refresh is not necessary. 

• Use a time stamp facility to seal the cryptographic 
information in time. Such a facility is expected to 
provide all of the necessary characteristics required 
for solving the key degradation problem. This lime 
stamp facility could use one of the techniques listed 
above, or it could even be an independent service 
(see below for a discussion of time stamping). 

Relationship to Time stamping. 

A secure and comprehensive LTSV solution prefer- 
ably includes an association with a time stamping mech- 
anism. For long term verification of digital signatures, it 
ts often necessary to know the time at which particular 
events occurred (e.g. time of signing or verifying a sig- 
nature) to determine if a document was valid at that spe- 
cific time. If there were uncertainty concerning when a 
document was signed, then the later reverification of 
that document could be compromised because of the 
uncertainty of when it was signed. 

Fig. 4 is a flow diagram that provides two alternative 
scenarios that illustrate the applicability of time stamps. 

In scenario 1: 

• Alice signs a document at lime T1, and sends it to 



Bob (140). 

• Alice's certificate is revoked at time T2 (142). 
5 • Bob verifies Alice's signature at time T3 (144). 

In scenario 2: 

• Alice's certificate is revoked at time T1 (150). 

10 

• Alice signs a document at time T2, and sends it to 
Bob (152). 

• Bob verifies Alice's signature at time T3 (1 54). 

15 

When Bob performs the verification (at time T3), he 
does not know when Alice signed the document. This is 
critical, because if Alice's key (certificate) were revoked 
before signing the message, then the signature veriflca- 
^0 tion by Bob should fail, and Bob should not trust the con- 
tents of the message. If, on the other hand, the revoca- 
tion occurred after the act of signing, then the signature 
can be presumed to be valid and trustworthy. For sim- 
plicity, this example does not consider the complicating 
25 issue of CRL latency, i.e. the time between the initiation 
of certificate revocation and the lime when this informa- 
tion becomes available on a CRL. 

This example demonstrates the need for a secure 
and trusted time stamp mechanism in the domain of dig- 
so ital signatures. The mere recording of the current date 
and time when creating a digital signature is not suffi- 
cient for most application because the source of that 
time may not be trusted by the recipient. The impact, 
however, also applies not only to the short term signa- 
ls ture verification process, but also to the long term veri- 
fication of digital signatures. Given the example above, 
the LTSV server could save the PKI state (at time T1) 
associated with scenario 1 or scenario 2 (or both). The 
outcome of a signature verification on this message 
40 years later is greatly affected by the PKI state used for 
this verification process, as well as the target time for 
the verification. 

The problem highlighted above demonstrates the 
preference that the LTSV service to be cognizant of 
time. It should: 

• Be able to determine in a secure fashion the time 
at which a document was originally signed; 

50 . Be able to re-create accurately the PKI stale which 
was active at a target time in the past; 

• Be able to determine the current date and time ac- 
curately; and 

55 

• At a minimum, save the PKI state associated with 
a particular larget time. 
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These requirements establish the preference for 
the integration of a time stamp facility with the signing 
and verification (and reverification) process. When a 
document is signed, it is also preferably time stamped 
to document in a secure fashion the precise moment at 
which that event occurred. The LTSV service should 
know the time for which the PKI state is to be saved, be 
sure to save the appropriate state (the state active at 
the target time), and execute its signature reverification 
process in the context of the correct time. 

Usage Scenarios. 

Figs. 5a-5c provide block schematic diagrams that 
illustrate three long term signature verification usage 
scenarios. 

In scenario 1 , a client (EntityA) 50 submits a docu- 
ment to a LTSV facility 52 for long term signature verifi- 
cation. This is a simple case where EntityA is interested 
in documenting that il possessed some piece of infor- 
mation. 

In scenario 2. EntityB 56 receives a document from 
EntityA 54 and submits that document to the LTSV fa- 
cility 58. In this case, EntityB wants to document that it 
received some information from EntityB. 

In scenario 3, EntityA 60 sends the same document 
to EntityB 64 and to the LTSV facility 62. This case rep- 
resents a carbon copy feature, whereby EntityA can 
document the information it sent to EntityB by addition- 
ally filing it with the LTSV facility. 

Each of the scenarios described above raises is- 
sues with respect to encryption, private key access, and 
trust models. 

Encryption and Private Key Access. 

A document can be encrypted and/or signed. Ide- 
ally, the LTSV facility accepts any such document. This 
raises a problem, however, with respect to how the 
LTSV module works with respect to the encryption. 
When encrypting under a public key system, the docu- 
ment is effectively encrypted under the public key of the 
recipient, thereby guaranteeing that the recipient (the 
possessor of the corresponding private key) is the only 
entity which can decrypt the information, (For purposes 
of this discussion, interaction with symmetric keys and 
algorithms is ignored.) 

When applying this principle to scenario 1 , It is clear 
that if the signed message is also encrypted, then it 
could be encrypted under the public key of the LTSV 
module. This allows the LTSV component to unwrap the 
signed document and preserve it for long term verifica- 
tion. This is a useful feature because it provides confi- 
dentiality between EntityA and the LTSV service. This 
scenario does not preclude the possibility that the 
source document sent signed and encrypted to the 
LTSV module could itself be encrypted under a key 
known only to EntityA. That is, it is not necessary that 



the LTSV have access to the plain text version of the 
source document. The LTSV module treats that encrypt- 
ed document as the source. If EntityA does decide to 
encrypt the document first under a secret key before 
s submitting the document to the LTSV service, then it is 
the responsibility of EntityA to maintain possession of 
that key if and when decryption of that document is re- 
quired. 

In Scenario 2, il the message from EntityA to EntityB 
io is encrypted (under the public key of EntityB) and then 
forwarded - unchanged - to the LTSV service by Enti- 
tyB, then it is unreadable by the LTSV component be- 
cause it does not possess the private key required to 
decipher and unwrap the enclosed signed document. 
is This unwrapping (decipherment) is essential for the 
LTSV module to do its job. 

There exist several alternatives for addressing this 
problem: 

• Allow the LTSV facility to have access to EntilyB's 
private key; 

• Do not allow EntityA to send encrypted documents 
to EntityB; or 

• Have EntityB strip off the privacy aspect of the 
signed and encrypted document received from En- 
tityA. Because EntityB wants to preserve EntrtyA's 
signature on the document, and be able to verify H 
at a later time, this stripping process can not alter 
the validity of the signature. EntityA can then either 
send the stripped (lb. plain text) document to the 
LTSV service, or it can re-encrypt it (still preserving 
the original signature by EntityA) under the public 
key of the LTSV module. 

The latter approach above is presently the preferred 
approach. The first approach above raises significant 
security concerns because it requires distribution of an 
entity's private key. The second approach above is un- 
acceptably restrictive on the usage of the system. 

Trust. 

Digital signature verification is always performed 
between two (and only two) entities. The verification 
process Is based upon (among other things) the trust 
relalionship(s) in place between those two entities - the 
originator (signer) and the recipient (verifier). 

Fig. 6 is a block schematic diagram that illustrates 
trust between two entities according to the invention. In 
this situation, EntityA 70 has been issued a certificate 
by CA1 72, EntityB 74 has been issues a certificate by 
CA2 76, and CA's 1 and 2 have been cross certified. (A 
cross-certificate is a special type ol certificate which in- 
dicates mutual trust between two CAs.) The resulting 
trusl model sets up a path of trust between EntityA and 
EntityB, enabling them to verify digitally signed docu- 
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ments from one another successfully. (A trust model is 
comprised of the trust relationships among PKI entities 
(CAs and end users), embodied by the certificates and 
cross-certificates issues among these entities, as well 
as the underlying policies which enable this trust.) Note 
that if any of the three paths in this model were not in 
place, then sufficient trust would be lacking for the suc- 
cessful exchange of digitally signed messages between 
the two end parties. Signature verification would fail if 
any entity in this path is not trusted. 

This trust path is commonly referred to as the cer- 
tificate chain because il is composed of the certificates 
between the two entities. When considering the save 
state approach to long term signature verification, it is 
this entire trust path (among other things) which must 
be archived as part of the PKI state for later signature 
reverification. Moreover, the trust path stored by the 
LTSV facility must contain the relevant trust information 
existing at the time of the request, not at some other 
time (before or after) where the trust relationships may 
be different between the entities. For example, a cross 
certificate between to CAs could either be created or re- 
moved at some point in time. This could effect the trust 
between two entities and affect the outcome of a signa- 
ture verification. 

As discussed above, the time associated with the 
existing trust model between two entities is extremely 
important to the LTSV facility, but there are also ramifi- 
cations with respect to how the LTSV module works - 
specifically, what trust information is needed and stored 
by the LTSV component for later signature verification. 
This gets complicated when the LTSV component is in- 
cluded, which may or may not be trusted (via some trust 
path) by some entities. 

Consider the three scenarios illustrated in Figs. 5a- 

5c: 

Scenario 1 is fairly straightforward There are only 
two entities involved. The trust path stored by the LTSV 
facility is the path between those two parties (EntityA 
and LTSV). It is assumed that trust exists between these 
entities, otherwise EntrtyA would not submit a request 
to that service. 

Scenario 2, however, raises certain issues. When 
EntityB sends a request to the LTSV service, what sig- 
nature does EntityB want to later verify? Most likely, En- 
tityB wants to reverify Entity A's signature at a later time 
- ft wants the LTSV service to document that the signed 
document received from Entity A was valid (contained a 
valid signature) at the time it was received. This raises 
two general questions: 

• Whether the LTSV service is trusted by EntityA. It 
can be assumed that the communicating parties 
(EntityA with EntityB, and EntityB with the LTSV) 
have developed some trust between themselves. 
But in this case, it is possible that there exists no 
trust path between EntityA and the LTSV compo- 
nent. 



• The trust path that is to be stored by the LTSV fa- 
cility. There exist three possible trust paths which 
can be stored by the LTSV. i.e. the path between 
Entities A and B: the path between EntityB and the 
s LTSV component itself: and the path between Enti- 
tyA and the LTSV component, if it exists. 

Fig. 7 is a block schematic diagram that illustrates 
a long term signature verification trust model. G iven sce- 
10 nario 2 : where EntityB 84 submits a signed document, 
received from EntityA 80, to the LTSV component 88, 
the LTSV can save the trust model embodied in the orig- 
inal signed document (EntityA 80 CA1 82 -> CA2 86 
-» EntityB 84). Later verification of this signature recre- 
*s ates the verification process originally performed by En- 
tityB when it received this document from EntityA If, 
however, the PKI state stored by the LTSV service were 
to contain only the trust path between the submitter and 
the service (EntityB 84 -> CA2 86 -> CA3 90 -> LTSV 
88), then reveri Oca lion of the original document, as orig- 
inally performed, is impossible. In fact, this is exactly the 
paradigm described in scenario 1 , where the trust path 
between the submitter and the LTSV are of interest. 

The above discussion reveals that there are good 
reasons for the LTSV component to be able to store ei- 
ther trust path, depending upon the requirements of the 
client. 

in scenario 2, the LTSV would most likely store the 
trust path corresponding to the message from EntityA 
to EntityB (to reverify the signed document from EntityA 
to EntityB). In scenario 1 , the LTSV would store the trust 
path corresponding to the submission itself - from En- 
tityA to the LTSV. 

Similarly, scenario 3 represents a case where flex- 
ibility in which trust path(s) to store is required. In this 
case, EntityA's submission to the LTSV facility may be 
with the intent to either reverify its correspondence with 
EntityB, orto reverify the submission itself (between En- 
tityA and the LTSV). In fact, both trust paths may be of 
use to the client. The requirements on the LTSV are de- 
termined by the business of the particular application 
being deployed. For this reason, the interface to the 
LTSV preferably supports the ability of the client to indi- 
cate the needs in terms of trust paths as it impacts the 
requirements for later reverification. 

The disclosures in United States patent application 
no 08/892,792, from which this application claims prior- 
ity, and in the abstract accompanying this application 
are incorporated herein by reference. 



Claims 

1. A method of enabling long term verification of digital 
signatures, comprising the steps of; 

submitting a source document or digest thereof 
to a signature verification entity; and 
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using an archive facility to store a public key 
infrastructure (PK!) state relative to said docu- 
ment at a selected archival time. 9. 

2. A method as in claim 1 , comprising the steps of: s 

using said archived PKI state to re-create said 
PKI state relative to said document at a select- 
ed time after a certificate associated with said 
signature has expired; io 
wherein the time over which a digital signature 
associated with said document can be verified 10. 
is extended beyond expiralion of any or all of 
any certificates upon which that signature de- 
pends. 16 



3. A method as in claim i or 2 comprising the step of: 

storing said source document separately from 
any associated cryptographic information. 

4. A method as in claim 1 , 2 or 3 wherein the selected 
archival time used as the basis for subsequent re- 
creation of a signature verification process is the 
time of said source document submittal; 

is the time when said source document was 
signed by its originator; or in the time when said 
source document was verified by a recipient. 

5. A method as in any preceding claim, comprising the 
step or; 

protecting said PKI state information from intrusion 
by maintaining it in a secure storage facility prefer- 
ably comprising of at least one of a firewall, access 
control mechanism, audit facility, intrusion detection 
facility, physical isolation and network isolation; or 
protecting non-cryptographic PKI state information 
from intrusion by protecting it in an archive via any 
of a signature and keyed hash algorithm. 

6. A method as in any preceding claim comprising the 
step of: 

providing utilities for viewing said PKI state informa- 
tion and for visually monitoring system security. 

7. A method as in any preceding claim, wherein class- 
es of PKI state information may include one or more 
of certificate chain from one entity to another, In- 
cluding certification authorities (OAs) and the end 
entities; certificate revocation lists (CRLs), one for 
each CA in certificate chain; certificate practice 
statements; attribute certificates; policy constraints; 
trust information; and date and time. 

8. A method as in any preceding claim, comprising the 
step of: 

periodically countersigning all data in need of cryp- 
tographic refresh through the use of nested signa- 
tures and/or countersigning information in said ar- 



chive facility once with an extremely long key. 

A method as in any preceding claim, comprising at 
least one of the steps of: 

protecting said archive facility itself, rather than 
individual documents contained in said archive; 
and 

employing a cryptographic protection mecha- 
nism at said signature verification entity, 

A method as in any preceding claim, comprising the 
step of: 

using a time stamp facility to seal cryptographic in- 
formation in time. 

11 . Apparatus for long term verification of digital signa- 
ture, comprising: 

a source document; and 
an archive facility for storing a public key infra- 
structure (PKI) state relative to said document 
at a selected archival time. 

12. Apparatus as in claim 11, comprising: 

either of a signature and a keyed hash system 
for protecting non-cryptographic PKI state informa- 
tion from undetected modification, wherein said 
noncryptographic PKI state information is main- 
tained in an archive. 
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(54) Method and apparatus for long term verification of digital signatures 



(57) The time over which a digital signature can be 
verified is extended well beyond the expiration of any or 
all of the certificates upon which that signature depends. 
In a -save state" approach, an archive facility is used to 
store public key infrastructure (PKI) state, e.g. crypto- 
graphic information, such as certificates and certificate 
revocation lists (CRLs), in addition to non-cryptographic 
intormation, such as trust policy statements or the doc- 
ument itself. This information comprises all that is nec- 
essary to re-create the signature verification process at 
a later time. When a user wants to verify the signature 
on a document, possibly years later, a long term signa- 
ture verification (LTSV) server re-creates the precise 



state of th8 PKI at the time the document was originally 
submitted. The LTSV server restores the 6tate, and the 
signature verification process executes the exact proc- 
ess it performed (or would have performed) years ear- 
lier Another embodiment of the invention combines the 
strength of cryptography with the proven resilience of 
(non-public key) technology and procedures currently 
associated with secure data stores by saving the PKI 
state for future verification; and protecting the PKI state 
information from intrusion by maintaining it in a secure 
storage facility which is protected by services, such as 
firewalls, access control mechanisms, audit facilities, in- 
trusion detection facilities, physical isolation, and net- 
work isolation. 



CO 
< 

in 

Si 

00 

o 

0. 

Ul 



( LTSVOtont j 



signolurc 



PKI state: 
-certificate! 

-ant 

tiieiiall. iMovctiufes. uuii\, ecctis control 



mvs«v« 



Archive k 



2" 



Vbwhgsnd 



• tenatura 
source doc men I 
PKI ttrtc 



} 



restore 
stole 



Signature Verification Modrt 

i 

Veld/Not VeM 

F10. 3 



RrmedbyJouv*. 76001 PAWS (PR) 



EP 0 892 521 A3 



European Patent 
Office 



EUROPEAN SEARCH REPORT 



AppncaUon Number 

EP 98 39 5646 



DOCUMENTS CONSIDERED TO BE RELEVANT 



Category 



Crtalion of document with indication, where appropriate, 
ol retevanl passages 



Relevant 
to claim 



CLASSIFICATION OF TOE 
APPLICATION (inlCWJ 



EP G 869 636 A (ARCANVS) 
7 October 1998 (1998-10-07) 

* column 7, line 3 - column 11, line 11 * 

EP 0 422 757 A (FISCHER ADDISON H) 
17 April 1991 (1991-04-17) 

* column 1, line 44 - line 46 * 

* abstract; figure 1 * 

WO 92 12485 A (BLANDFORD ROBERT R) 
23 July 1992 (1992-07-23) 

* page 10, line 6 - page 15, line 4 * 

CH0KHAN1 S: "Toward a national public key 
infrastructure" 

IEEE COMMUNICATIONS MAGAZINE, SEPT. 1994, 
USA, 

vol. 32, no. 9, pages 70-74, XP000476557 
ISSN: 0163-6804 

* page 71 - page 72; figure 1 * 

W0 97 20411 A (MICALI SILVIO) 
5 June 1997 (1997-06-05) 

* page 6, line 14 - page 22, line 22 * 



1-12 



1-12 



1-12 



1.11 



1.11 



The present eearch report has been drawn up tor eJ) claims 



HG4L9/32 



TECHNICAL FIELDS 
SEARCHED (InLCU) 



H94L 



Race of Much 

THE HAGUE 



Om* o> eon^Mon oi the t&»ch 

2 February 2000 



Zucka, G 



CATEGORY OF CfTED DOCUMENTS 

X : psrtiau tarty rttevtRt H taken alone 

Y : part'MrienV relevant U eoneined win another 

dbcaimtflt of the iam» oattgorjr 
A: twhnobglo*! background 
O : ncn-wnttao casefcuure 
P : Intermedial* document 



T '.thftcryorprtnefeto underlying the Invention 
E : eartke patent doouroerd, but ptaslahed on, or 

after the fling dale 
0 : dooument eked h the application 
Udooumtntoled for other rteeoni 

A : member of tie urn patent family, aormapondjng 



2 



EP 0 892 521 A3 



ANNEX TO THE EUROPEAN SEARCH REPORT 
ON EUROPEAN PATENT APPLICATION NO. 



EP 98 30 5646 



This Ann** lists the paten) family members relating to the patent documents cited in the above-mentioned European search report 
The members ore as contained in the European Patent Of lice EDP file on 

The European Patent Office is in noway liable for these particulars which are merely given for Ihe purpose of information. 

02-62-2000 



Patent document 




Publication 


Patent family 


Publication 


cited an tearch report 




data 




member(s) 


date 


EP G869636 


A 


07-10-1998 


HONE 






EP 0422757 


A 


17-04-1991 


US 


5001752 A 


19-03-1991 








AT 


144360 T 


15-11-1996 








AU 


624299 6 


04-06-1992 








AU 


5753190 A 


18-04-1991 








CA 


2018770 A 


13-04-1991 








DE 


69028894 D 


21-11-1996 








DE 


69028894 T 


03-04-1997 








JP 


3185551 A 


13-08-1991 








US 


5136643 A 


04-08-1992 


WO 9212485 


A 


23-07-1992 


US 


5189700 A 


23-62-1993 








US 


5347579 A 


13-09-1994 


WO 9720411 


A 


05-06-1997 


US 


5666416 A 


09-09-1997 








US 


5960083 A 


28-09-1999 



l For more details about this annex : see Official Journal of the European Patent Off ice, No. 12/82 



3 



